52.2.36.145 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	AMAZON SCAMMERS!	2019-09-30 07:45:28

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.2.36.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43263
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.2.36.145.			IN	A

;; AUTHORITY SECTION:
.			458	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092901 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Sep 30 07:45:25 CST 2019
;; MSG SIZE  rcvd: 115

Host info

145.36.2.52.in-addr.arpa domain name pointer ec2-52-2-36-145.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.36.2.52.in-addr.arpa	name = ec2-52-2-36-145.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
200.122.234.203	attackbotsspam	Sep 13 23:52:43 web8 sshd\[18327\]: Invalid user password from 200.122.234.203 Sep 13 23:52:43 web8 sshd\[18327\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.122.234.203 Sep 13 23:52:45 web8 sshd\[18327\]: Failed password for invalid user password from 200.122.234.203 port 58740 ssh2 Sep 13 23:57:20 web8 sshd\[20406\]: Invalid user 1 from 200.122.234.203 Sep 13 23:57:20 web8 sshd\[20406\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.122.234.203	2019-09-14 08:09:33
125.128.252.77	attackspambots	Telnet Server BruteForce Attack	2019-09-14 08:02:29
222.139.228.203	attack	$f2bV_matches	2019-09-14 07:48:07
89.104.26.163	attackspam	Sep 13 23:14:40 master sshd[24119]: Failed password for root from 89.104.26.163 port 42761 ssh2	2019-09-14 07:57:51
128.199.219.181	attack	Sep 13 14:14:44 php1 sshd\[32458\]: Invalid user abc123 from 128.199.219.181 Sep 13 14:14:44 php1 sshd\[32458\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.219.181 Sep 13 14:14:46 php1 sshd\[32458\]: Failed password for invalid user abc123 from 128.199.219.181 port 39088 ssh2 Sep 13 14:19:28 php1 sshd\[580\]: Invalid user 1 from 128.199.219.181 Sep 13 14:19:28 php1 sshd\[580\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.219.181	2019-09-14 08:20:58
189.211.111.99	attackbotsspam	Sep 13 13:41:00 auw2 sshd\[30235\]: Invalid user webmaster from 189.211.111.99 Sep 13 13:41:00 auw2 sshd\[30235\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189-211-111-99.static.axtel.net Sep 13 13:41:03 auw2 sshd\[30235\]: Failed password for invalid user webmaster from 189.211.111.99 port 47728 ssh2 Sep 13 13:44:57 auw2 sshd\[30569\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189-211-111-99.static.axtel.net user=root Sep 13 13:45:00 auw2 sshd\[30569\]: Failed password for root from 189.211.111.99 port 33850 ssh2	2019-09-14 07:50:46
91.136.162.41	attackspambots	Telnet Server BruteForce Attack	2019-09-14 08:07:26
106.13.38.59	attackbotsspam	Sep 14 01:55:38 [host] sshd[17491]: Invalid user leisa from 106.13.38.59 Sep 14 01:55:38 [host] sshd[17491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.38.59 Sep 14 01:55:40 [host] sshd[17491]: Failed password for invalid user leisa from 106.13.38.59 port 59124 ssh2	2019-09-14 07:59:48
150.95.187.89	attack	Sep 14 01:39:51 markkoudstaal sshd[18334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.95.187.89 Sep 14 01:39:54 markkoudstaal sshd[18334]: Failed password for invalid user Password1 from 150.95.187.89 port 39580 ssh2 Sep 14 01:44:26 markkoudstaal sshd[18774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.95.187.89	2019-09-14 07:53:21
62.210.105.116	attackspam	ssh failed login	2019-09-14 07:52:15
209.97.169.136	attackbotsspam	Sep 14 01:30:35 OPSO sshd\[2717\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.169.136 user=admin Sep 14 01:30:37 OPSO sshd\[2717\]: Failed password for admin from 209.97.169.136 port 50542 ssh2 Sep 14 01:35:42 OPSO sshd\[3911\]: Invalid user radio from 209.97.169.136 port 39526 Sep 14 01:35:42 OPSO sshd\[3911\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.169.136 Sep 14 01:35:44 OPSO sshd\[3911\]: Failed password for invalid user radio from 209.97.169.136 port 39526 ssh2	2019-09-14 07:47:46
193.169.255.140	attackspambots	Sep 14 00:56:56 mail postfix/smtpd\[17265\]: warning: unknown\[193.169.255.140\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Sep 14 01:28:04 mail postfix/smtpd\[17782\]: warning: unknown\[193.169.255.140\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Sep 14 01:38:26 mail postfix/smtpd\[18100\]: warning: unknown\[193.169.255.140\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Sep 14 01:48:49 mail postfix/smtpd\[18252\]: warning: unknown\[193.169.255.140\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-09-14 08:06:30
116.228.53.227	attackspam	Sep 13 23:19:13 mout sshd[17143]: Invalid user zaednicka from 116.228.53.227 port 56650	2019-09-14 07:49:40
222.188.29.249	attack	Sep 13 23:18:16 saschabauer sshd[1421]: Failed password for root from 222.188.29.249 port 53510 ssh2 Sep 13 23:18:39 saschabauer sshd[1421]: error: maximum authentication attempts exceeded for root from 222.188.29.249 port 53510 ssh2 [preauth]	2019-09-14 08:14:58
106.13.135.165	attackspambots	Sep 14 01:20:03 dev0-dcde-rnet sshd[9211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.165 Sep 14 01:20:05 dev0-dcde-rnet sshd[9211]: Failed password for invalid user 123 from 106.13.135.165 port 57082 ssh2 Sep 14 01:22:16 dev0-dcde-rnet sshd[9218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.135.165	2019-09-14 07:57:22

Recently Reported IPs

51.98.252.41	67.212.193.227	71.158.247.79	239.84.121.40
20.126.115.154	191.123.148.200	78.30.18.102	60.232.207.109
72.139.207.52	49.255.179.216	206.168.114.232	177.84.40.30
185.109.43.54	167.71.70.18	35.240.181.249	222.188.18.123
144.48.125.186	197.58.141.91	187.113.44.9	96.126.117.163